$ rpki-client -vvf rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/CE7287309A9811EBAC99AD22C4F9AE02.roa File: CE7287309A9811EBAC99AD22C4F9AE02.roa (raw, json) Hash identifier: a3CXXkgCJy/kTb6R32PWdtOHM2t0HT5WwTiiDLNY6Ik= Subject key identifier: AD:76:82:C6:1B:D7:0E:77:E2:47:2F:8D:76:B7:B5:57:58:42:14:E8 Certificate issuer: /CN=A913E7CA/serialNumber=FFB503F202320CD86973AFE61A16FBB5C6F28D64 Certificate serial: 06DF Authority key identifier: FF:B5:03:F2:02:32:0C:D8:69:73:AF:E6:1A:16:FB:B5:C6:F2:8D:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/CE7287309A9811EBAC99AD22C4F9AE02.roa Signing time: Thu 16 Apr 2026 22:28:50 +0000 ROA not before: Thu 16 Apr 2026 22:28:50 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 141773 IP address blocks: 103.163.210.0/23 maxlen: 23 103.163.210.0/24 maxlen: 24 103.163.211.0/24 maxlen: 24 2001:df6:2780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.crl rsync://rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:28:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1759 (0x6df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E7CA, serialNumber=FFB503F202320CD86973AFE61A16FBB5C6F28D64 Validity Not Before: Apr 16 22:28:50 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69e162a2-6d9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7d:1d:03:3c:b6:47:fc:40:37:33:df:3e:26: 64:dd:71:ce:17:47:e8:94:6b:d7:8c:4d:8d:21:82: 55:2c:a7:e6:de:98:dc:06:85:9a:aa:31:47:ee:3d: af:61:a4:77:0c:a7:22:78:e2:1f:08:95:53:e2:b0: bf:b0:bc:db:43:1e:da:55:80:8e:46:19:6b:36:9f: 9e:bd:85:a6:08:81:ee:f5:11:99:e5:eb:70:d7:fd: 44:00:43:bd:10:41:7c:04:b4:14:b3:a3:ef:fb:e9: 59:8a:15:1c:6d:34:8c:dc:77:d4:d2:77:34:cd:9c: 60:60:ce:f5:37:b3:50:e1:61:6c:70:72:e4:8e:93: 34:80:38:d1:3d:1c:db:36:ca:e8:a2:19:73:f3:75: 09:52:f2:82:03:7d:32:4d:d4:f5:24:77:39:28:db: b8:65:4f:5c:fb:ae:de:94:75:74:81:a8:db:66:6a: 22:3a:6f:8b:d4:8c:37:d1:e9:af:ae:36:5b:92:25: 5b:87:17:bf:3e:e9:c9:ef:36:b7:29:b4:90:5f:f5: df:b8:f7:d1:82:b5:ef:9d:59:5b:45:d8:75:92:a0: 85:66:c4:d6:2a:1f:a3:1e:6f:13:5a:f1:7e:b0:dd: c1:f7:f1:8f:54:55:7b:5f:5d:0e:71:55:39:87:a7: db:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:76:82:C6:1B:D7:0E:77:E2:47:2F:8D:76:B7:B5:57:58:42:14:E8 X509v3 Authority Key Identifier: keyid:FF:B5:03:F2:02:32:0C:D8:69:73:AF:E6:1A:16:FB:B5:C6:F2:8D:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/CE7287309A9811EBAC99AD22C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.163.210.0/23 IPv6: 2001:df6:2780::/48 Signature Algorithm: sha256WithRSAEncryption 65:ac:ae:f8:1c:95:99:ef:eb:34:f7:07:8b:4c:28:53:5b:91: 14:3e:cd:03:5f:ec:c2:57:90:60:7d:d8:65:e7:20:1f:aa:63: 88:b3:69:7e:4a:92:9d:2f:12:2b:16:95:33:8e:f8:5c:51:0b: c1:4c:28:ec:e1:ca:78:4c:5c:52:ce:b0:93:92:6a:59:cd:63: 22:a3:89:8d:d0:40:51:4f:f5:65:d4:07:1b:ed:5f:39:b5:94: fb:13:e7:73:46:f2:d5:5e:d6:48:50:91:da:ab:7a:18:62:13: 8f:a2:e5:c9:8e:4b:09:62:1b:f0:dc:0c:a5:3d:56:b5:09:5e: c6:16:29:f3:8c:f2:6d:98:c8:41:e3:a3:c4:dc:71:a4:c7:60: 30:1c:f0:ff:bd:fa:46:8c:6d:f5:73:80:42:6b:4f:2c:30:82: 84:2c:5c:f9:be:2d:65:51:ef:d8:3b:1d:75:4e:51:db:c2:a2: 7f:28:31:a0:ea:d2:f7:dc:9a:14:77:ca:8c:de:68:42:31:b1: e6:de:1b:60:5f:8d:e8:bc:8e:f6:2a:17:95:04:c6:92:6f:c7: 67:64:82:90:83:fc:a4:c6:a5:b1:1b:81:97:cf:ab:20:4b:98: e6:8e:b3:a0:fa:74:8b:46:4c:42:70:d0:5b:2c:39:64:b3:9f: 81:46:0b:05 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U3Q0ExMTAvBgNVBAUTKEZGQjUwM0YyMDIzMjBDRDg2OTczQUZFNjFBMTZGQkI1 QzZGMjhENjQwHhcNMjYwNDE2MjIyODUwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWUxNjJhMi02ZDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0H0dAzy2R/xANzPfPiZk3XHOF0folGvXjE2NIYJVLKfm3pjcBoWaqjFH7j2v YaR3DKcieOIfCJVT4rC/sLzbQx7aVYCORhlrNp+evYWmCIHu9RGZ5etw1/1EAEO9 EEF8BLQUs6Pv++lZihUcbTSM3HfU0nc0zZxgYM71N7NQ4WFscHLkjpM0gDjRPRzb Nsroohlz83UJUvKCA30yTdT1JHc5KNu4ZU9c+67elHV0gajbZmoiOm+L1Iw30emv rjZbkiVbhxe/PunJ7za3KbSQX/XfuPfRgrXvnVlbRdh1kqCFZsTWKh+jHm8TWvF+ sN3B9/GPVFV7X10OcVU5h6fbfwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFK12gsYb 1w534kcvjXa3tVdYQhToMB8GA1UdIwQYMBaAFP+1A/ICMgzYaXOv5hoW+7XG8o1k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTdDQS8wMDNERTA2MDlB OTAxMUVCODk3OTcwNDlDNEY5QUUwMi9fN1VEOGdJeUROaHBjNl9tR2hiN3RjYnlq V1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL183VUQ4Z0l5RE5ocGM2X21HaGI3dGNieWpXUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0U3Q0EvMDAzREUwNjA5QTkwMTFFQjg5Nzk3MDQ5QzRGOUFFMDIvQ0U3Mjg3MzA5 QTk4MTFFQkFDOTlBRDIyQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6PSMA8EAgACMAkDBwAgAQ32J4AwDQYJKoZIhvcNAQELBQADggEB AGWsrvgclZnv6zT3B4tMKFNbkRQ+zQNf7MJXkGB92GXnIB+qY4izaX5Kkp0vEisW lTOO+FxRC8FMKOzhynhMXFLOsJOSalnNYyKjiY3QQFFP9WXUBxvtXzm1lPsT53NG 8tVe1khQkdqrehhiE4+i5cmOSwliG/DcDKU9VrUJXsYWKfOM8m2YyEHjo8TccaTH YDAc8P+9+kaMbfVzgEJrTywwgoQsXPm+LWVR79g7HXVOUdvCon8oMaDq0vfcmhR3 yozeaEIxsebeG2Bfjei8jvYqF5UExpJvx2dkgpCD/KTGpbEbgZfPqyBLmOaOs6D6 dItGTEJw0FssOWSzn4FGCwU= -----END CERTIFICATE-----Generated at Fri Apr 17 12:04:58 2026 by rpki-client